Werk #12547: Fix possible XSS on audit log page
| Component | Setup | ||||
| Title | Fix possible XSS on audit log page | ||||
| Date | Mar 12, 2021 | ||||
| Level | Trivial Change | ||||
| Class | Security Fix | ||||
| Compatibility | Compatible - no manual interaction needed | ||||
| Checkmk versions & editions |
|
Displaying the detail text of changes could trigger execution of arbitrary javascript code that was previously stored by a modification made to the configuration. This issue may affect users of the setup of previous 2.0.0 versions.